Agent Mode
English
    SophosLabs Intelix logo

    SophosLabs Intelix

    Sold by
    SophosLabs 
    Powered by machine learning, decades of threat research, and petabytes of intelligence, SophosLabs Intelix gives your app superpowers to identify, classify, and prevent threats. Designed for easy integration into any application, augmenting your cybersecurity is only an HTTP request away.
    Leave a review

    Ratings and reviews

    4.3
    15 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    47%
    47%
    7%
    0%
    0%
    0 AWS reviews
    |
    15 external reviews
    External reviews are from G2  and PeerSpot .

    Filters

    Review type

    AWS Marketplace reviews
    External reviews
    Reviews (15)
    S Quesada N

    Automated sandbox analysis has transformed threat hunting and now cuts investigation time

    Reviewed on Jun 20, 2026
    Review provided by PeerSpot

    What is our primary use case?

    SophosLabs Intelix serves as my primary tool for advanced threat intelligence and deep analysis of suspicious files, URLs, and IPs. Teams use it to detect zero-day threats, enrich investigations, and automate security workloads, making day-to-day threat hunting faster and more reliable.

    What is most valuable?

    I used SophosLabs Intelix for deep analysis and workflow automations. For example, using Intelix Sandbox Detonations, we uploaded a file and within minutes received a detailed behavior report showing its attempt to contact a known malicious IP and drop a secondary payload.

    When I used the Sandbox detonations and received that detailed behavior report, it provided immediate clarity on the threat, which accelerated our investigation. SophosLabs Intelix enriched the alert with context we could act on right away, and the automated workflow contained the issues within minutes, saving our team hours and keeping us ahead of attacks.

    In my daily work, SophosLabs Intelix helps us triage alerts faster through enriching investigations automatically. Sandbox analysis provides immediate clarity on suspicious files, while automated workflow handles repetitive lookups. It has become a core part of our routine, saving hours and allowing us to focus on higher-value security tasks.

    The features that stand out most to me about SophosLabs Intelix are Sandbox Detonation and automated enrichment. The Sandbox provides immediate clarity on suspicious files, while enrichment adds context we can act on right away. The workflow automation also saves us hours by pushing verdicts directly into our SIEM. Together, these features make SophosLabs Intelix a core part of my daily work.

    SophosLabs Intelix has positively impacted our organization by making investigations faster, more accurate, and less resource-intensive. Using Sandbox Detonation and automated enrichment could cut investigation time by up to 40 percent, giving analysts immediate clarity on suspicious files.

    The 40 percent reduction in investigation time has been significant for us. It has eased the team's workloads, reduced alert fatigue, and accelerated containment so incidents are resolved in under an hour instead of half a day. Overall, it makes our response sharper and frees analysts to focus on proactive security work.

    What needs improvement?

    SophosLabs Intelix has been effective, but I would prefer to see more customization for reports and third-party integration. The UI could also be more intuitive, and alert fine-tuning would help tailor it to our environment.

    I rated it eight out of ten because of reporting customization. The dashboard could use more customization for compliance and executive reporting. Additionally, UI improvements or third-party integrations would be beneficial.

    For how long have I used the solution?

    I have been using SophosLabs Intelix for approximately one year.

    What do I think about the stability of the solution?

    SophosLabs Intelix AI governance and security is strong because they combine expert-led threat intelligence, strict privacy controls, and responsible AI practices. The platform balances deep learning detection with generative AI while ensuring customer data is handled securely and transparently.

    I have found SophosLabs Intelix AI outputs to be accurate and reliable. Sandbox reports consistently provide clarity, and automated enrichment makes alerts actionable right away. The verdicts are stable enough to trust in triage and containment decisions, though reporting customization could be improved.

    What do I think about the scalability of the solution?

    SophosLabs Intelix is very scalable.

    How are customer service and support?

    Customer support has been great for me.

    What was our ROI?

    I consider the money saved because the service is faster than a human or the staff of the IT department.

    What's my experience with pricing, setup cost, and licensing?

    The pricing and cost structure is uncertain. I am familiar with licensing aspects, but I am not entirely certain about the overall pricing.

    Which other solutions did I evaluate?

    I did not purchase SophosLabs Intelix through the AWS Marketplace.

    What other advice do I have?

    If you are considering SophosLabs Intelix, my advice is to focus on how it can streamline investigation and integrate into the existing workflow. For example, I recommend starting with the Sandbox analytics, analysis, and automated enrichment. Sandbox reveals truth, AI guides swift containment, and workflows flow with ease. I rated this product eight out of ten.

    Information Technology and Services

    High Fidelity Threat Intelligence

    Reviewed on Jan 16, 2024
    Review provided by G2
    What do you like best about the product?
    They provides threat classification and deep analysis for known clean and malicious objects. Its easy to use and is effective and efficient and fast. I have frequently used it because of its efficiency.
    What do you dislike about the product?
    There is nothing to dislike about SophosLabs Intelix.
    What problems is the product solving and how is that benefiting you?
    I have used sophos products such as firewall and email to submit suspicious files to Intelix for deep analysis to accurately detect zero day threats
    E-Learning

    Threat Intelligence

    Reviewed on Jan 16, 2024
    Review provided by G2
    What do you like best about the product?
    It provided threat classification and deep analysis for known clean and malicious objects. It was easy use and implement and was fast. I have used it frequently because of it being easy use and is efficient.
    What do you dislike about the product?
    There is nothing to dislike about SophosLabs Intelix
    What problems is the product solving and how is that benefiting you?
    Threat hunters and security analysis rely on protection and detection technology to review and investigate suspicious behaviour. I have done detailed analysis on the above problem using sophos products.
    Financial Services

    Threat intelligence

    Reviewed on Jan 16, 2024
    Review provided by G2
    What do you like best about the product?
    It provided threat classification and deep analysis of kiwn clean and malicious objects including webpage and IP addresses. It is also easy to use and is fast. It us easy to implement.
    What do you dislike about the product?
    I don't dislike anything about Sophos Labs Intelx.
    What problems is the product solving and how is that benefiting you?
    I am using SophosLabs Intelix for threat intelligence. I used products such sophos firewall and Sophia email and other products to submit files to intellix for deep analysis to accurately detect zero day threats.
    Shagun S.

    Threat intelligence

    Reviewed on Oct 03, 2023
    Review provided by G2
    What do you like best about the product?
    Detailed analysis and provides information about suspicious threat objects and also easy yo use
    What do you dislike about the product?
    I don't have something to say about dislike
    What problems is the product solving and how is that benefiting you?
    Detecting of malicious objects
    syed M.

    Sophos Security

    Reviewed on Oct 02, 2023
    Review provided by G2
    What do you like best about the product?
    its a very effective product for monitoring and analysing threats and assesing the security files and data using advanced machine learning and AI Techniques. It helps org identify and mitigate potential threats by prooviding real time threat intell and file reputation sources. It plays a crucial role in enhancing the overall Cybersecurity
    What do you dislike about the product?
    Potential downside of using Sophos Labs intellix is, for cloud based it heavily relies on an internet which could be a limitation in an specific envi=ronments where limited or unrely internet access. It also provide valuable feedback and threat intell with related to zero day attaks.
    What problems is the product solving and how is that benefiting you?
    It provide real time threat analysis and t=detection and provides insights into the security of files and data and gives edge to the users by identifying and mitigating potential risks and threats. By redcuing the risk of data breaches and other types of malwares infections, it also enhanced the overall cybersecurity
    Hospital & Health Care

    My company using Many products.

    Reviewed on Sep 22, 2023
    Review provided by G2
    What do you like best about the product?
    My company using Many products from Sophos likes Endpoint protection and UTM firewalls at Azure and AWS cloud, Physical Hardware Firewall for on prem location
    What do you dislike about the product?
    till now not any, but some time loading time High ehile we inspect endpoints
    What problems is the product solving and how is that benefiting you?
    Batter protein from intruder and ransomeare and many way public alll port off and incoming packets tracking details very easy
    aviv i.

    SOC ANALYST

    Reviewed on Sep 09, 2023
    Review provided by G2
    What do you like best about the product?
    Its interface is very convenient,And the look is very innovative
    What do you dislike about the product?
    alot of falsh positive, numbers of rules should be tune
    What problems is the product solving and how is that benefiting you?
    defending
    Ali A.

    Real-time

    Reviewed on Sep 08, 2023
    Review provided by G2
    What do you like best about the product?
    I don't have personal preferences, but one of the advantages of SophosLabs Intelix is its ability to provide real-time threat intelligence, helping to protect against various cybersecurity threats effectively.
    What do you dislike about the product?
    I don't have personal dislikes, but some users may find the pricing of SophosLabs Intelix to be a potential drawback.
    What problems is the product solving and how is that benefiting you?
    SophosLabs Intelix helps users by providing real-time threat intelligence, benefiting them by enhancing their cybersecurity defenses.
    MAHESH D.

    Automate security checks

    Reviewed on Jul 24, 2023
    Review provided by G2
    What do you like best about the product?
    Automating security checks, identifying potential threats, and taking proactive measures to protect their systems and users.
    What do you dislike about the product?
    What i dislike is like: Probably maybe its cost , complexity and its less customization flexibility.
    What problems is the product solving and how is that benefiting you?
    it provides protection in my organization.It helps my organizations detect and prevent various types of cyber threats, such as malware, viruses, phishing attacks, and more.